YBOM6Th1JQ2s1cF.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 55/70 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 513.50 KB (525824 bytes)
Compile time: 2019-10-28 23:15:05
MD5: cee354f8399dbcc89335dc2f69a45281
SHA1: ad044d56d1b3933069b0fc37c186e09360e710a3
SHA256: 36467e5c5855a588e927196b68d833affcd2c3c8ee2739558a1161e0c7047e00
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-11-03 13:33:05
Last submission: 2019-11-03 13:33:05
Filename detected: - YBOM6Th1JQ2s1cF.exe (1)
URL file hosting
hXXp://codework.business24crm.io/system1/YBOM6Th1JQ2s1cF.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-11-02 16:00:39 [55/70] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x7fa24 523264 c3f96becf7da87595c83630ff4194fd4 768fb282b8d43686ab14646d0395d75777b72547
.rsrc 0x82000 0x600 1536 70e13de59ee83cf6e3a74e0ae4eb3a75 812da5a9571937c00fbdcfc6250b14259dbb5535
.reloc 0x84000 0xc 512 273db6d765665444361622eb4c33e394 1bacf231c49de1d0c35264e5516235ff0e8ed117
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: XML
System.Xml
FIle type: Library
mscoree.dll
IP Found
1.9.2.1
URL(s)
http://tempuri.org/DataSet1.xsd

#infosec #automation

TheSystem Itself @ 2019-11-03 13:33:05